Jaguar Land Rover Halts Operations Longer Due to Cyberattack Impact

Jaguar Land Rover’s UK factories will remain closed until at least Wednesday as the company continues to recover from a cyberattack that struck its systems on 31 August.

The carmaker shut down its IT networks in response to the breach, halting production at its Halewood and Solihull plants, Wolverhampton engine facility, and sites in Slovakia, China, and India.

Staff working on the production lines have been told to stay home, and the shutdown has rippled through JLR’s global supply chain.

Cyber Attack Details

As per a report by BBC, JLR said it is working around the clock with third-party cybersecurity experts and law enforcement to restore its networks in a controlled and safe manner.

The company has not ruled out further disruption and has declined to comment on speculation that operations may remain suspended for weeks.

Under normal conditions, JLR produces about 1,000 vehicles a day, and the stoppage has left suppliers uncertain about future demand.

“The impact on parts suppliers is significant,” said Shaun Adams, manager at Qualplast, a key JLR parts manufacturer. He told the BBC that any extended shutdown would force his business to “seriously look at what we need to future-proof.”

Some suppliers have already instructed their own employees to remain at home, compounding the economic fallout of the attack.

Beyond factory closures, the cyberattack disrupted dealership and maintenance operations. Showrooms were unable to register new cars, delaying customer deliveries at a time when many buyers take delivery of vehicles bearing the new registration plates released on 1 September.

Garages servicing JLR vehicles faced difficulty ordering replacement parts, though workarounds have since been established to mitigate customer impact.

The timing of the attack was especially disruptive. Early September is typically one of the busiest periods for new-plate vehicle deliveries, meaning that both sales and servicing networks have felt immediate strain.

JLR’s decision to disable its IT systems, while necessary to contain the breach, left dealerships unable to complete routine digital processes.

A group of young hackers, known for targeting UK businesses such as Marks & Spencer earlier this year, has claimed responsibility for the JLR attack.

The English-speaking group posted messages on Telegram boasting about the breach and shared screenshots suggesting they accessed confidential information.

Security analysts believe the hackers are attempting to extort money from JLR, though the company has stated it is investigating the claims and has not made any ransom payment.

JLR is owned by India’s Tata Motors and is one of Britain’s largest automotive employers, directly supporting thousands of jobs across its manufacturing sites and supply network.

The ongoing suspension of operations presents a significant test for the company’s resilience and the wider UK automotive sector.

As the investigation and recovery efforts continue, JLR and its partners will be under pressure to restore production and reassure customers and suppliers that normal service will resume as soon as possible.

Find this Story Interesting! Follow us on LinkedIn and X to Get More Instant Updates.